Extending Amazon GuardDuty with Cloud Insight Essentials
1 like306 views
This document discusses the importance of detection in security and introduces Alert Logic Cloud Insight Essentials. It notes that it takes companies on average 6 months to detect an intrusion. The essentials of security require continuous monitoring, accurate detection, and centralized management. Cloud Insight Essentials provides automated exposure and vulnerability management for AWS that extends GuardDuty findings. It offers visibility, identifies configuration flaws, and provides remediation advice. Cloud Insight Essentials integrates with AWS APIs for no-touch automation and a REST API for integration. It allows taking action sooner on threats with context and prioritized recommendations.
Extending Amazon GuardDuty with Cloud Insight Essentials
- 2. The Importance of Detection Good Detection Starts With: - Understanding your environment - Having real-time security data - Being proactive in remediation Quick Statistic “It takes companies an average of six months to spot an intrusion and another 55 days to contain the breach” * 2017 Ponemon Cost of a Data Breach Report
- 3. The Essentials of Frictionless Security Context is Everything - Knowing the where, why, and how to respond quickly to threats - Ability to understand what you are running and where. - Ability to identify, prioritize, and take action sooner Today’s Business Security Requires - Continuous monitoring - Accurately detect threats - Centralized management across accounts - Scale without business disruption Alert Logic has released Alert Logic Cloud Insight™ Essentials with an integration to Amazon GuardDuty™
- 4. ALERT LOGIC CLOUD INSIGHT™ ESSENTIALS
- 5. Alert Logic Cloud Insight Essentials Automated Exposure & Vulnerability Management for AWS Embrace and Extend GuardDuty Findings • Central visibility on your AWS assets • Identify AWS configuration flaws and recommended remediations • Log retention on security findings Solve the “Now What” Problem • Clear explanation of findings • Visualize resources tied with your findings • Immediate remediation advice and configuration changes How it Works • No-touch automation through AWS APIs and services • REST API Integration with your DevOps toolchain • Easily upgrade to add instance vulnerability scans to identify vulnerable instances with simple to understand remediation advice.
- 6. Cloud Insight Essentials Capabilities Take Action Sooner • Incident topology context enrichment: Gain the why, where, and how on all GuardDuty findings • Identify, prioritize, and take action on threats on your AWS environment Prevent Future Compromise • Continuous checks for configuration errors and prioritized remediation recommendations • Check against AWS security best practices for account and service misconfigurations Launch Essential Security Now • With zero footprint on your AWS environment, and no security expertise required • Easily extend protection to pre-authorized software vulnerability scanning directly within user-interface
- 7. How to Deploy Gain Intuitive, Actionable Findings on AWS Start your 30-day free trial on AWS Marketplace Visit: alertlogic.com/cie
- 8. DEMO
- 9. Upgrade to Full Stack Security with Cloud Defender AWS Exposure Assessment Managed WAFLog Analysis & Retention Vulnerability & IDS ActiveWatch™ Cloud Insight Log Manager™Threat Manager™ Web Security Manager PremierCloud Defender® Analytics & Managed Detection ActiveWatch Premier Log Review Web Detection Machine Learning
- 10. Q&A – In Closing Ryan Holland Senior Director, Technology Services Group Alert Logic Additional Resources • Cloud Insight Essentials on AWS Marketplace • Datasheet: Cloud Insight & Cloud Insight Essentials • FAQ: Cloud Insight & Cloud Insight Essentials • Video: Cloud Insight Essentials
- 11. Thank you.